Bank of America Platform Security Lead in Jersey City, New Jersey
Platform Security Lead
Security Engineering Lead - Job description:
This team lead position in the bank’s Platform Security Engineering team that will be focused on uplifting and building a new toolsets to manage host access entitlements, build the banks SIEM solution, and develop password and credential vaulting solutions..
Qualified individual must be self-starter with the ability to get involved at all stages of the product lifecycle including requirement gathering and analysis. A working knowledge platforms such as Active Directory platform, Power Broker, Splunk, CyberArk and general approaches to access management such as RBAC is desirable.
This role will be focused managing a global teams of developers as well as hands on product development. Individual will be part of a small team of software developers focused on host access/privilege management toolset, security instrumentation and credential vaulting tools.
Specific areas of focus will include:
Active collaboration to drive functional and technical architectures for development of new tools
Build out of a system of record to model team, role and coverage assignments
Engineer platform API’s and integrate with the firms workflow platforms
Integration and fulfillment of entitlements into Active Directory and downstream systems such as Power Broker.
Development of audit and access certification tools
Development of toolset to manage migration of servers from legacy access management solution
Development of credential vaulting solution for App 2 app authentication
Onboarding strategies, anomaly detection strategies and next generation instrumentation tools for SIEM
Enterprise role overview:
Directs, manages, plans and administers the operational and administrative activities of the Systems Engineering section. Supports multiple systems through maintenance, modification, problem resolution, etc. to support ongoing delivery of services and/or operations. Manages multiple applications/development projects, or single major complex initiatives if a small area of the development function. Coordinates resources across various applications, operations or projects. Responsible for staffing, performance management and compensation decision-making. Manages budget, monitors progress and adjusts resources and priorities accordingly. Provides input on policy issues. Typically 7-10 years of experience in managing and directing multi-project development teams
Qualified candidates will have at least 7 years experience in professional capacity with the following required skills:
Expertise with either C# and .NET development platform (3.5 – 4.5) or Java development
Experience building platforms web services (WCF or other platforms).
Experience modeling data and working experience implementing relational databases(SQL) or NoSQL platforms such as MongoDB.
Ability to apply SDLC best practices including test, build and deploy functionality specific to .NET web applications and client MSI packages
Documentation will be a key part of the delivery. Good oral and written communications skills are very important.
Strong knowledge of Linux platform, syslog facilities and access management tools such as Power Broker.
Strong knowledge of Windows platform internals, performance tuning and event log subsystem
Expertise integrating Splunk in an enterprise environment and building dashboards or other instrumentation
Most suitable candidates will have a basic understanding of the Active Directory platform (OU structure and LDAP functionality) as well as it’s authentication and authorizations functionality.
Prior experience building or integrating Identity Management or Access Management products is a plus
Job: TE-Systems Engineering
Primary Location: US-NY-NEW YORK
Work Locations: NY3222 222 BROADWAY New York 10038
Organization: 2721156-CHIEF TECHNOLOGY OFFICE F
Travel: Yes, 5 % of the Time
Job Posting Date: Nov 29, 2016
Unposting Date: Dec 6, 2016
Hours Per Week: 40.00
Shift: 1st Shift
Req ID: 16058463